Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/8fn569vyEDpY8ER7VPJG56bRCCk.roa
File: 8fn569vyEDpY8ER7VPJG56bRCCk.roa (raw, json)
Hash identifier: snaQx1c54YKYy84WrnAZGEe7VzC0hIpdAbWTTTQWGQI=
Subject key identifier: F1:F9:F9:EB:DB:F2:10:3A:58:F0:44:7B:54:F2:46:E7:A6:D1:08:29
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018BF2742B9F913E76FAACD248E4E11885E4
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/8fn569vyEDpY8ER7VPJG56bRCCk.roa
Signing time: Tue 21 Nov 2023 15:16:21 +0000
ROA not before: Tue 21 Nov 2023 15:16:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215965
IP address blocks: 2a12:bec0:600::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f2:74:2b:9f:91:3e:76:fa:ac:d2:48:e4:e1:18:85:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Nov 21 15:16:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1f9f9ebdbf2103a58f0447b54f246e7a6d10829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:73:1c:0e:99:7d:bd:9a:ef:4f:07:ef:12:18:
cf:84:e6:4d:8a:29:78:59:da:4a:ce:7c:51:94:28:
20:52:10:73:fc:4f:27:cb:0e:92:86:5a:a5:c6:a9:
29:5d:7f:c0:b2:8b:34:63:58:06:ed:8c:bd:5f:8a:
fe:e1:84:59:34:a1:8d:4f:f7:b4:3c:30:1b:ea:cf:
bb:d2:9e:7a:f2:70:8b:c4:d2:ba:a9:b8:00:5b:7c:
ce:35:61:28:c3:a7:bf:19:fd:b3:9f:53:5c:b7:d0:
4f:60:5f:4e:f8:9e:b3:ad:99:45:e8:43:0f:1e:2e:
fc:59:c2:90:12:35:49:72:ec:87:0b:e5:d7:8e:f6:
1f:6f:c1:13:34:8e:ce:9c:72:0e:7a:4a:1b:85:61:
cf:ed:ea:6d:96:71:29:cc:c8:60:69:29:79:ee:69:
21:c1:b1:9c:79:82:f5:f8:95:6e:b1:24:0c:31:27:
a6:bc:3c:a0:7f:f2:95:1a:a8:f4:6c:72:fe:c9:b5:
df:aa:56:d5:61:b3:b5:28:60:f6:81:a1:0c:ce:ec:
3b:be:66:eb:d2:88:7d:ea:13:94:26:2a:34:87:13:
99:f5:f7:39:e5:7b:17:62:17:6f:20:48:63:f4:4b:
dc:b7:d4:62:f7:d6:4b:f8:af:20:21:50:42:0e:a7:
4e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F9:F9:EB:DB:F2:10:3A:58:F0:44:7B:54:F2:46:E7:A6:D1:08:29
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/8fn569vyEDpY8ER7VPJG56bRCCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:600::/44
Signature Algorithm: sha256WithRSAEncryption
36:c2:2b:18:99:6c:4b:4f:f0:a2:1b:47:49:b9:ea:eb:8f:a3:
1f:dd:e2:78:9c:cc:9c:91:99:55:0d:9d:90:5a:c9:a0:ab:e1:
df:ba:2d:08:30:2e:b3:2d:70:ba:3a:07:06:7c:3c:b8:d0:98:
21:67:85:1e:e5:b4:de:59:52:b0:08:cc:72:be:7d:5b:ab:40:
14:8f:55:64:f1:3a:67:d9:dd:68:d5:fd:a3:08:ff:53:d6:1f:
cd:91:41:4c:41:b6:67:7c:a2:87:32:58:99:99:0a:d0:c0:73:
a1:5b:5a:a5:ea:26:52:3a:fc:71:de:ec:53:9e:ab:fc:19:a9:
36:76:3f:ec:c8:67:94:dc:aa:22:c3:95:95:93:be:38:f8:1f:
8e:24:4f:ba:35:bb:c8:6d:85:47:45:6d:1e:bd:cb:ad:b0:be:
31:67:46:37:28:b3:ce:46:b4:9a:c6:dc:b0:a1:71:c5:3e:25:
89:23:57:ba:f7:cc:9b:50:1a:0c:d1:87:1e:ce:c2:bc:c8:ff:
53:88:3b:ea:fb:92:04:83:34:35:6b:f0:0b:7d:04:9e:c1:06:
9e:27:72:14:10:32:f9:38:5d:88:85:57:c3:5b:ff:a0:90:f8:
f0:5d:d4:5d:14:e3:47:6e:44:6c:6c:84:08:3b:d1:1f:87:0d:
20:aa:36:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org